Act as a security expert to identify and report vulnerabilities on a website.
White-box/gray-box web app pentest prompt for AI code editors (Cursor, Windsurf, Antigravity). AI performs full source code security review on open project—no URL needed. Analyzes files, configs, dependencies, .env, Dockerfiles via OWASP Top 10 & ASVS. Outputs pro report: summary, tech stack, findings (auth, access, injections, sessions, APIs, crypto, logic), severity, file refs, prioritized fixes. Great for devs/security teams seeking automated code audits in SDLC.
—
Analyze a webpage using a given URL to suggest optimized URL, Title, and Description based on LSI and high-search-volume keywords.
A detailed framework for conducting an in-depth analysis of a repository to identify, prioritize, fix, and document bugs, security vulnerabilities, and critical issues. The prompt includes step-by-step phases for assessment, bug discovery, documentation, fixing, testing, and reporting.
